Alternatives and similar repositories for z9

Users that are interested in z9 are comparing it to the libraries listed below

• herosi / triage-collector

  View on GitHub
  ☆23Oct 9, 2024Updated last year
• dwmetz / Mal-Hash

  View on GitHub
  This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
  ☆15Jul 13, 2023Updated 2 years ago
• Yamato-Security / sigma-to-hayabusa-converter

  View on GitHub
  Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.
  ☆16Oct 22, 2025Updated 3 months ago
• alperenugurlu / Nac_Bypass_Agent

  View on GitHub
  This function combines all the above functions and takes necessary information from the user to change the IP and MAC address, start the …
  ☆73May 21, 2023Updated 2 years ago
• HalilDeniz / KaliPackergeManager

  View on GitHub
  Kali Packerge Manager
  ☆63Nov 1, 2023Updated 2 years ago
• alperenugurlu / AD_Enumeration_Hunt

  View on GitHub
  ☆90Aug 5, 2023Updated 2 years ago
• SafeBreach-Labs / EDRaser

  View on GitHub
  EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…
  ☆374Apr 6, 2024Updated last year
• RedSiege / GPPDeception

  View on GitHub
  This script generates a groups.xml file that mimics a real GPP to create a new user on domain-joined computers
  ☆46Mar 9, 2020Updated 5 years ago
• dwmetz / PSHero

  View on GitHub
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆36Jul 11, 2023Updated 2 years ago
• silverfort-open-source / latma

  View on GitHub
  ☆80Apr 18, 2023Updated 2 years ago
• mobdk / WinBoost

  View on GitHub
  Execute Mimikatz with different technique
  ☆51Nov 8, 2021Updated 4 years ago
• Yamato-Security / hayabusa-sample-evtx

  View on GitHub
  Sample evtx files to use for testing hayabusa detection rules
  ☆64Nov 5, 2025Updated 3 months ago
• samhaxr / VTScanner

  View on GitHub
  A comprehensive Python-based security tool for file scanning, malware detection, and analysis in an ever-evolving cyber landscape.
  ☆109Sep 7, 2023Updated 2 years ago
• JoelGMSec / HTTP-Shell

  View on GitHub
  MultiPlatform HTTP Reverse Shell
  ☆242Dec 31, 2025Updated last month
• aaaddress1 / ntkrnlProtectScan

  View on GitHub
  One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
  ☆43Oct 2, 2023Updated 2 years ago
• pkptzx / rawcopy-rs

  View on GitHub
  Primarily aimed at replicating files that cannot be directly copied due to being in use.
  ☆11Apr 22, 2024Updated last year
• RUB-NDS / OOXML_Signature_Security

  View on GitHub
  USENIX 2023 Artifacts
  ☆11Nov 25, 2022Updated 3 years ago
• sqall01 / LSMS

  View on GitHub
  Linux Security and Monitoring Scripts
  ☆327Sep 27, 2025Updated 4 months ago
• redhuntlabs / KubeStalk

  View on GitHub
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆178Jan 22, 2025Updated last year
• libyal / winevt-kb

  View on GitHub
  Windows Event Log Knowledge Base
  ☆29Dec 23, 2025Updated last month
• p0dalirius / SymfonyDumpSource

  View on GitHub
  A python script to automatically dump files and source code of a Symfony server in debug mode.
  ☆13Feb 11, 2025Updated last year
• OSRDrivers / tunnel

  View on GitHub
  Demonstrate the behavior of the tunnel cache on Windows
  ☆10Aug 13, 2019Updated 6 years ago
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• ydkhatri / spotlight_queries

  View on GitHub
  Queries for parsed spotlight database in sqlite
  ☆13Dec 29, 2020Updated 5 years ago
• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• valaDevs / jshunter

  View on GitHub
  simple tool for finding javascript files from webapps
  ☆10Apr 20, 2023Updated 2 years ago
• simon-r-watson / SophosCentral

  View on GitHub
  Sophos Central PowerShell module
  ☆11Jul 11, 2023Updated 2 years ago
• metalstormbass / VulnerableAzure

  View on GitHub
  Terraform playbook of a vulnerable Azure deployment
  ☆10Apr 28, 2022Updated 3 years ago
• Levi597 / HHbackdoor-V0.3

  View on GitHub
  Only for educational purposes
  ☆12Jun 17, 2023Updated 2 years ago
• criminalip / CIP-NSE-Script

  View on GitHub
  The NSE Script plugin integrates with Criminal IP CTI search engine for network scanning, showing IP details like WHOIS, running products…
  ☆15Nov 29, 2023Updated 2 years ago
• AnonKryptiQuz / ICU-WP

  View on GitHub
  ICU-WP is a Flask-based WordPress username enumeration tool. It detects WordPress sites and uses methods like author URL checks, REST API…
  ☆14Jan 17, 2025Updated last year
• dsnezhkov / h53

  View on GitHub
  A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place
  ☆10Aug 26, 2018Updated 7 years ago
• shlyuz / teamserver

  View on GitHub
  ☆12Jun 22, 2022Updated 3 years ago
• DavideRoss / pico-ctf-2017-writeups

  View on GitHub
  Writeups of some of PicoCTF 2017 challenges.
  ☆10Aug 3, 2018Updated 7 years ago
• mobdk / CoreClass

  View on GitHub
  Mimikatz embedded as classes
  ☆28Oct 25, 2021Updated 4 years ago
• Yamato-Security / suzaku-rules

  View on GitHub
  ☆11Dec 9, 2025Updated 2 months ago
• stuxnet999 / EventTranscriptParser

  View on GitHub
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Sep 13, 2023Updated 2 years ago
• usdAG / sncscan

  View on GitHub
  Tool for analyzing SAP Secure Network Communications (SNC).
  ☆57Apr 16, 2024Updated last year
• Antonlovesdnb / DockerDetectionNotes

  View on GitHub
  Some of my rough notes for Docker threat detection
  ☆49Aug 26, 2023Updated 2 years ago